3.8.2 Configuring outgoing threat protection

In order to and configure MetaDefender Email Gateway Security incoming threat protection, you must configure the routing of the outbound security rules.
images/download/attachments/36831288/image2017-6-28_16-0-12.png

For the examples below let us assume that the following is configured:

Asset

Property

Value

Email gateway

IP

192.168.0.10

Mail server

IP

192.168.0.20

Corporate domain (domain in inbound emails)

domain name

example.com

Routing configuration

Server profile

Under Inventory > Server profiles create an SMTP type server profile that contains the email gateway(s).

Set the following:

Field

Value

Example

SERVER PROFILE TYPE

SMTP

SMTP

PROFILE NAME

Unique name for this profile

Email gateway

SERVER SPECIFICATIONS

Specification of the email gateway(s) in URI syntax

smtp://192.168.0.10:25

For further details about server profiles see 3.7 Server profiles.

images/download/attachments/36831288/screencapture-localhost-8058-2018-03-21-14_57_20.png

Security rules

Under Policy > Security rules add or modify outbound security rules.

Set the following:

Tab

Field

Value

Example

FILTER

SENDER IP ADDRESS

IP address of mail server(s)

192.168.0.20

RECIPIENT DOMAIN OR ADDRESS

Email address(es) of external recipients (QRegExp syntax may be used)

.+@.+

RELAY

FORWARD PROCESSED EMAILS TO

Server profile containing the email gateway(s)

Email gateway

For further details about security rules see 4.2 Security rules.

images/download/attachments/36831288/screencapture-localhost-8058-2018-03-21-14_47_18.png

images/download/attachments/36831288/screencapture-localhost-8058-2018-03-21-14_56_00.png

Verify Settings

Send an email to MetaDefender Email Gateway Security's SMTP service (port 10025 by default) with a recipient not with the corporate internal domain, and check whether the email was handled by the proper rule and delivered to the email gateway(s).